A critical update for the Firefox web browser is urgent, as Mozilla has issued a warning to users regarding a newly discovered zero-day vulnerability. This update comes just days after the release of a fix for another actively exploited vulnerability within Firefox 67.0.3. The most recent vulnerability, identified as CVE-2019-11708,…
Recent Cybersecurity Incidents: A Deep Dive into Breaches and Threats Pooja Tikekar (@PoojaTikekar) • January 1, 1970 Image: Shutterstock/ISMG This week, Information Security Media Group reports significant cybersecurity incidents including a breach tying Clop ransomware to Korean Air vendor data compromise, a sophisticated attack by a China-linked APT leveraging software…
Fraud Management & Cybercrime, Ransomware U.S. Cybersecurity Professionals Plead Guilty to BlackCat Ransomware Scheme Targeting Medical Firms Mathew J. Schwartz (euroinfosec) • December 30, 2025 Image: Kevin Sto/Shutterstock In a significant development within the cybersecurity landscape, two professionals admitted guilt in a Miami federal court after being implicated as affiliates…
Cybercrime, Fraud Management & Cybercrime, Fraud Risk Management Synthetic Entities, AI-Driven Scams, Stablecoin Misuse Pose Key Threats in 2026 Suparna Goswami ( gsuparna) • December 29, 2025 Frank McKenna, PointPredictive; Peter Tapling, U.S. Faster Payments Council; and Steve Lenderman, isolved In 2025, scams leveraging artificial intelligence saw an unprecedented surge,…
Dec 25, 2025Ravie LakshmananData Breach / Financial Crime Recent findings from TRM Labs reveal that encrypted vault backups compromised in the 2022 LastPass data breach have been exploited by cybercriminals to access crypto assets, particularly due to the use of weak master passwords. This criminal activity has reportedly persisted into…
Shortly after cybersecurity researchers raised warnings about two significant vulnerabilities in the SaltStack configuration framework, an ongoing campaign has already begun exploiting these flaws, targeting organizations such as LineageOS, Ghost, and DigiCert. The vulnerabilities, identified as CVE-2020-11651 and CVE-2020-11652, permit attackers to execute arbitrary code on remote servers operating within…
The emergence of black markets for illegal goods, including drugs and weapons, began on the dark web over a decade ago, leveraging cryptocurrencies and anonymity tools like Tor. At that time, these innovations facilitated the execution of vast, untraceable online transactions valued in the billions. Fast forward to 2025, and…
Recent investigations by mobile security experts have unveiled extensive vulnerabilities within Firebase databases used by numerous iOS and Android applications. These deficiencies have exposed over 100 million data records, including unencrypted passwords, user identifiers, geographical data, and in certain instances, sensitive financial information related to banking and cryptocurrency transactions. As…
In a striking incident highlighting ongoing cybersecurity threats, the FBI has apprehended a Russian national accused of attempting to infiltrate a U.S. company’s computer network through dubious means. The individual, identified as Egor Igorevich Kriuchkov, 27, was arrested in Los Angeles after reportedly offering $1 million to an employee of…
